Preview Tool

Cisco Bug: CSCvj15572 - Flow-offload rewrite rules not updated when MAC address of interface changes

Last Modified

Feb 07, 2019

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases


Description (partial)

Flow offload rule written to the hardware engine do not get updated with updated MAC address of interface.

The interface MAC address of the unit (ASA/Firepower Threat Defense) gets changed either manually or some other automated means such as change in failover role (primary to secondary or vice versa) of a unit. Flow-offload has to be enabled on ASA (Firepower Threat Defense has it enabled automatically) and there should be existing flows being offloaded before the change in MAC address.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.